Revisions of trivy
unknown
committed
(revision 73)
[info=d8f8f9dea544c4ab47e2008e4481c023278a1f36]
unknown
committed
(revision 72)
[info=bf07e07a177e5aa8e2fdfe8727e2f405e78a8355]
unknown
committed
(revision 71)
[info=a03edab0f045ed7be68faeddef7d7ecc9416592b]
unknown
committed
(revision 70)
[info=ce022474521a0bcbc7b8393ac59461ebd365a76a]
unknown
committed
(revision 69)
[info=d6a0aff42580397f43c55dea4f1b3c21e68dc04e]
unknown
committed
(revision 68)
[info=27546f55b2c2033d9c9a2fb412e55e243099b53d]
unknown
committed
(revision 67)
[info=16eb3e5450850247a66e544bf371083f0e129584]
unknown
committed
(revision 66)
[info=035221685efccc7fdfb21c8dadbe95c22a92438e]
Dirk Mueller (dirkmueller)
committed
(revision 65)
[info=c8b1d43bab1f114d1fab2a73c28b2d3b5a3b335e]
buildservice-autocommit
accepted
request 1092482
from
Dirk Mueller (dirkmueller)
(revision 64)
baserev update by copy to link target
Dirk Mueller (dirkmueller)
committed
(revision 63)
- Update to version 0.42.1: * ci: remove 32bit packages (#4585) * fix(misconf): deduplicate misconf results (#4588) * fix(vm): support sector size of 4096 (#4564) * fix(misconf): terraform relative paths (#4571) * fix(purl): skip unsupported library type (#4577) * fix(terraform): recursively detect all Root Modules (#4457) * fix(vm): support post analyzer for vm command (#4544) * fix(nodejs): change the type of the devDependencies field (#4560) * fix(sbom): export empty dependencies in CycloneDX (#4568) * refactor: add composite fs for post-analyzers (#4556) * chore(deps): bump golangci/golangci-lint-action from 3.4.0 to 3.5.0 (#4554) * chore(deps): bump helm/kind-action from 1.5.0 to 1.7.0 (#4526) * chore(deps): bump github.com/BurntSushi/toml from 1.2.1 to 1.3.0 (#4528) * chore(deps): bump github.com/alicebob/miniredis/v2 from 2.30.2 to 2.30.3 (#4529) * chore(deps): bump github.com/aws/aws-sdk-go-v2/service/ec2 (#4536) * chore(deps): bump github.com/tetratelabs/wazero from 1.0.0 to 1.2.0 (#4549) * chore(deps): bump github.com/spf13/cast from 1.5.0 to 1.5.1 (#4532) * chore(deps): bump github.com/testcontainers/testcontainers-go (#4537) * chore(deps): bump github.com/go-git/go-git/v5 from 5.6.1 to 5.7.0 (#4530) * chore(deps): bump github.com/aws/aws-sdk-go-v2/config (#4534) * chore(deps): bump github.com/sigstore/rekor from 1.2.0 to 1.2.1 (#4533) * chore(deps): bump alpine from 3.17.3 to 3.18.0 (#4525) * feat: add SBOM analyzer (#4210) * fix(sbom): update logic for work with files in spdx format (#4513) * feat: azure workload identity support (#4489) * feat(ubuntu): add eol date for 18.04 ESM (#4524) * fix(misconf): Update required extensions for terraformplan (#4523) * refactor(cyclonedx): add intermediate representation (#4490) * fix(misconf): Remove debug print while scanning (#4521)
buildservice-autocommit
accepted
request 1086593
from
Dirk Mueller (dirkmueller)
(revision 62)
baserev update by copy to link target
Dirk Mueller (dirkmueller)
committed
(revision 61)
- actually create a PIE binary
buildservice-autocommit
accepted
request 1083465
from
Dirk Mueller (dirkmueller)
(revision 60)
baserev update by copy to link target
Dirk Mueller (dirkmueller)
committed
(revision 59)
- Update to version 0.41.0: * fix(spdx): add workaround for no src packages (#4118) * test(golang): rename broken go.mod (#4129) * feat(sbom): add supplier field (#4122) * test(misconf): skip downloading of policies for tests #4126 * refactor: use debug message for post-analyze errors (#4037) * feat(sbom): add VEX support (#4053) * feat(sbom): add primary package purpose field for SPDX (#4119) * fix(k8s): fix quiet flag (#4120) * fix(python): parse of pip extras (#4103) * feat(java): use full path for nested jars (#3992) * feat(license): add new flag for classifier confidence level (#4073) * feat: config and fs compliance support (#4097) * chore(deps): bump sigstore/cosign-installer from 2.8.1 to 3.0.1 (#3952) * feat(spdx): add support for SPDX 2.3 (#4058) * fix: k8s all-namespaces support (#4096) * perf(misconf): replace with post-analyzers (#4090) * fix(helm): update networking API version detection (#4106) * feat(image): custom docker host option (#3599) * style: debug flag is incorrect and needs extra - (#4087) * docs(vuln): Document inline vulnerability filtering comments (#4024) * feat(fs): customize error callback during fs walk (#4038) * fix(ubuntu): skip copyright files from subfolders (#4076) * docs: restructure scanners (#3977) * fix: fix `file does not exist` error for post-analyzers (#4061)
buildservice-autocommit
accepted
request 1079785
from
Dirk Mueller (dirkmueller)
(revision 58)
baserev update by copy to link target
Dirk Mueller (dirkmueller)
committed
(revision 57)
Dirk Mueller (dirkmueller)
committed
(revision 56)
- Update to version 0.40.0: * feat(flag): Support globstar for `--skip-files` and `--skip-directories` (#4026) * chore(deps): bump actions/stale from 7 to 8 (#3955) * fix: return insecure option to download javadb (#4064) * fix(nodejs): don't stop parsing when unsupported yarn.lock protocols are found (#4052) * ci: add gpg signing for RPM packages (#4056) * fix(k8s): current context title (#4055) * fix(k8s): quit support on k8s progress bar (#4021) * chore: add a note about Dockerfile.canary (#4050) * ci: fix path to canary binaries (#4045) * fix(vuln): report architecture for debian packages (#4032) * feat: add support for Chainguard's commercial distro (#3641) * ci: bump goreleaser for Github Action from 1.4.1 to 1.16.2 (#3979) * fix(vuln): fix error message for remote scanners (#4031) * feat(report): add image metadata to SARIF (#4020) * docs: fix broken cache link on Installation page (#3999) * fix: lock downloading policies and database (#4017) * fix: avoid concurrent access to the global map (#4014) * feat(rust): add Cargo.lock v3 support (#4012) * feat: auth support oci download server subcommand (#4008) * chore(deps): bump github.com/docker/docker (#4009) * chore: install.sh support for armv7 (#3985) * chore(deps): bump github.com/Azure/go-autorest/autorest/adal (#3961)
Dirk Mueller (dirkmueller)
committed
(revision 55)
- Update to version 0.39.1: * fix(rust): fix panic when 'dependencies' field is not used in cargo.toml (#3997) * fix(sbom): fix infinite loop for cyclonedx (#3998) * chore(deps): bump helm/chart-testing-action from 2.3.1 to 2.4.0 (#3954) * fix: use warning for errors from enrichment files for post-analyzers (#3972) * chore(deps): bump github.com/docker/docker (#3963) * fix(helm): added annotation to psp configurable from values (#3893) * chore(deps): bump github.com/go-git/go-git/v5 from 5.5.2 to 5.6.1 (#3962) * fix(secret): update built-in rule `tests` (#3855) * chore(deps): bump github.com/alicebob/miniredis/v2 from 2.23.0 to 2.30.1 (#3957) * test: rewrite scripts in Go (#3968) * docs(cli): Improve glob documentation (#3945) * chore(deps): bump github.com/aws/aws-sdk-go-v2/service/sts (#3959) * ci: check CLI references (#3967) * chore(deps): bump alpine from 3.17.2 to 3.17.3 (#3951) * chore(deps): bump github.com/aws/aws-sdk-go from 1.44.212 to 1.44.234 (#3956) * chore(deps): bump github.com/moby/buildkit from 0.11.4 to 0.11.5 (#3958) * chore(deps): bump actions/setup-go from 3 to 4 (#3953) * chore(deps): bump actions/cache from 3.2.6 to 3.3.1 (#3950) * chore(deps): bump github.com/containerd/containerd from 1.6.19 to 1.7.0 (#3965) * chore(deps): bump github.com/sigstore/rekor from 1.0.1 to 1.1.0 (#3964)
buildservice-autocommit
accepted
request 1077009
from
Dirk Mueller (dirkmueller)
(revision 54)
baserev update by copy to link target
Displaying revisions 1 - 20 of 73